Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/65/0f1aaf-b173-4ce1-bcba-cc353ebacba6/1/QxxX4ZIdMaNK69EuUHoTb-BFmMY.mft
File: QxxX4ZIdMaNK69EuUHoTb-BFmMY.mft (raw, json)
Hash identifier: L0I2bDHafcmCPOorf76RK7rglOurEnBoAx3liOIyjDU=
Subject key identifier: C4:BF:77:3F:C9:68:38:88:D1:DD:4E:61:38:D3:41:C9:D8:8C:2C:D9
Authority key identifier: 43:1C:57:E1:92:1D:31:A3:4A:EB:D1:2E:50:7A:13:6F:E0:45:98:C6
Certificate issuer: /CN=431c57e1921d31a34aebd12e507a136fe04598c6
Certificate serial: 019CABA1F3262117833092C090427F6D3239
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/QxxX4ZIdMaNK69EuUHoTb-BFmMY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/65/0f1aaf-b173-4ce1-bcba-cc353ebacba6/1/QxxX4ZIdMaNK69EuUHoTb-BFmMY.mft
Manifest number: 0603
Signing time: Sun 01 Mar 2026 23:00:43 +0000
Manifest this update: Sun 01 Mar 2026 23:00:43 +0000
Manifest next update: Mon 02 Mar 2026 23:00:43 +0000
Files and hashes: 1: QxxX4ZIdMaNK69EuUHoTb-BFmMY.crl (hash: u018+y43jD/k9n/tPdL4bz1zqL+T7d4dBToR6qJoppo=)
2: mIEKfqcwzKGnUqM9s4OdPs7YrbA.roa (hash: buVxIPz10EIVfwpYwh+P1ZYqWF3K+n7bUAR0sR0jGqU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/65/0f1aaf-b173-4ce1-bcba-cc353ebacba6/1/QxxX4ZIdMaNK69EuUHoTb-BFmMY.crl
rsync://rpki.ripe.net/repository/DEFAULT/65/0f1aaf-b173-4ce1-bcba-cc353ebacba6/1/QxxX4ZIdMaNK69EuUHoTb-BFmMY.mft
rsync://rpki.ripe.net/repository/DEFAULT/QxxX4ZIdMaNK69EuUHoTb-BFmMY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 02 Mar 2026 18:00:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:ab:a1:f3:26:21:17:83:30:92:c0:90:42:7f:6d:32:39
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=431c57e1921d31a34aebd12e507a136fe04598c6
Validity
Not Before: Mar 1 23:00:43 2026 GMT
Not After : Mar 2 23:00:43 2026 GMT
Subject: CN=c4bf773fc9683888d1dd4e6138d341c9d88c2cd9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:98:de:b8:3c:95:d4:03:f3:77:95:98:19:79:8d:
96:4f:fc:04:5a:91:d9:9f:3f:4d:ad:71:83:75:fd:
1c:c1:b6:d4:59:d9:0a:e3:42:35:41:76:57:6b:34:
b9:22:82:75:d9:5b:bb:47:32:a5:f0:30:d0:71:4b:
db:19:6a:73:45:ec:fd:88:82:af:8f:1b:08:75:74:
90:dc:49:ce:14:e6:64:08:7a:22:0b:0d:21:77:10:
9c:25:3e:cd:09:2e:46:ac:92:5c:51:c4:10:60:fe:
85:9c:48:62:51:44:3b:dc:8b:b0:bf:74:2e:7c:3f:
0c:97:10:57:76:03:d1:31:8c:08:5f:7e:18:7f:cd:
4a:54:9f:8f:24:9e:4b:c6:16:25:a7:ca:93:0f:78:
4f:36:9f:4f:e1:19:dd:7c:32:ce:98:2d:7c:a4:32:
b7:5e:f7:b6:38:a6:20:0c:31:64:64:80:c2:fd:28:
0c:8c:1a:4f:33:04:8d:da:5c:16:9b:29:be:6b:1c:
fc:df:2c:f3:91:b5:04:e0:ae:f7:ad:5b:9b:75:e7:
b1:51:55:f5:40:b5:93:71:79:49:8c:36:3d:9e:4a:
e6:10:04:60:a5:9c:1d:dc:bd:9c:83:37:c4:aa:0b:
b6:d9:8c:03:2b:87:22:79:4b:8a:45:d6:50:3f:71:
47:f9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C4:BF:77:3F:C9:68:38:88:D1:DD:4E:61:38:D3:41:C9:D8:8C:2C:D9
X509v3 Authority Key Identifier:
keyid:43:1C:57:E1:92:1D:31:A3:4A:EB:D1:2E:50:7A:13:6F:E0:45:98:C6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/QxxX4ZIdMaNK69EuUHoTb-BFmMY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/65/0f1aaf-b173-4ce1-bcba-cc353ebacba6/1/QxxX4ZIdMaNK69EuUHoTb-BFmMY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/65/0f1aaf-b173-4ce1-bcba-cc353ebacba6/1/QxxX4ZIdMaNK69EuUHoTb-BFmMY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
92:92:45:f1:4c:90:20:43:92:82:ba:c1:c3:a0:64:9f:f5:bb:
98:63:1d:c4:1c:30:d4:c4:bc:48:0f:4c:fd:70:dc:8f:37:9d:
ff:80:8d:d1:e5:cb:1a:a9:3d:ee:4c:12:60:9a:3d:8d:d0:4c:
7e:f5:85:0b:20:67:47:ac:ae:88:20:3f:15:78:4e:40:d8:1d:
55:dc:76:f6:74:7d:8c:e4:37:ea:53:8c:e4:1c:79:89:97:e6:
c2:26:35:3c:fb:16:91:87:4a:37:a9:39:45:36:3e:35:35:a3:
6c:96:ce:78:a4:81:b3:14:c7:56:36:9c:da:bf:96:86:60:07:
94:41:88:36:2f:dc:19:1f:15:c5:dc:5a:27:03:eb:10:66:11:
22:90:b5:bb:96:52:ef:97:fa:9f:a0:75:e3:a7:5a:85:45:c6:
60:66:1f:62:8e:74:74:45:83:89:bc:d5:e7:33:c0:40:74:d6:
bc:33:25:eb:e9:d5:d3:fb:62:fa:3e:5e:5d:ff:16:96:95:38:
32:dc:67:d0:3a:f8:82:4b:ed:b8:2e:0b:82:3c:00:f9:5b:b7:
d5:50:85:bf:30:d9:41:2e:bc:18:bc:1e:65:a5:0c:a8:ba:6b:
d6:93:cc:8f:ce:f8:72:84:63:5d:9e:7c:ab:95:a4:b0:83:d9:
37:89:0e:dd
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZyrofMmIReDMJLAkEJ/bTI5MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDQzMWM1N2UxOTIxZDMxYTM0YWViZDEyZTUwN2ExMzZmZTA0
NTk4YzYwHhcNMjYwMzAxMjMwMDQzWhcNMjYwMzAyMjMwMDQzWjAzMTEwLwYDVQQD
EyhjNGJmNzczZmM5NjgzODg4ZDFkZDRlNjEzOGQzNDFjOWQ4OGMyY2Q5MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAmN64PJXUA/N3lZgZeY2WT/wEWpHZ
nz9NrXGDdf0cwbbUWdkK40I1QXZXazS5IoJ12Vu7RzKl8DDQcUvbGWpzRez9iIKv
jxsIdXSQ3EnOFOZkCHoiCw0hdxCcJT7NCS5GrJJcUcQQYP6FnEhiUUQ73Iuwv3Qu
fD8MlxBXdgPRMYwIX34Yf81KVJ+PJJ5LxhYlp8qTD3hPNp9P4RndfDLOmC18pDK3
Xve2OKYgDDFkZIDC/SgMjBpPMwSN2lwWmym+axz83yzzkbUE4K73rVubdeexUVX1
QLWTcXlJjDY9nkrmEARgpZwd3L2cgzfEqgu22YwDK4cieUuKRdZQP3FH+QIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFMS/dz/JaDiI0d1OYTjTQcnYjCzZMB8GA1UdIwQY
MBaAFEMcV+GSHTGjSuvRLlB6E2/gRZjGMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvUXh4WDRaSWRNYU5LNjlFdVVIb1RiLUJGbU1ZLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82NS8wZjFhYWYtYjE3My00Y2UxLWJjYmEt
Y2MzNTNlYmFjYmE2LzEvUXh4WDRaSWRNYU5LNjlFdVVIb1RiLUJGbU1ZLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC82NS8wZjFhYWYtYjE3My00Y2UxLWJjYmEtY2MzNTNlYmFjYmE2
LzEvUXh4WDRaSWRNYU5LNjlFdVVIb1RiLUJGbU1ZLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAkpJF8UyQ
IEOSgrrBw6Bkn/W7mGMdxBww1MS8SA9M/XDcjzed/4CN0eXLGqk97kwSYJo9jdBM
fvWFCyBnR6yuiCA/FXhOQNgdVdx29nR9jOQ36lOM5Bx5iZfmwiY1PPsWkYdKN6k5
RTY+NTWjbJbOeKSBsxTHVjac2r+WhmAHlEGINi/cGR8VxdxaJwPrEGYRIpC1u5ZS
75f6n6B146dahUXGYGYfYo50dEWDibzV5zPAQHTWvDMl6+nV0/ti+j5eXf8WlpU4
Mtxn0Dr4gkvtuC4LgjwA+Vu31VCFvzDZQS68GLweZaUMqLpr1pPMj874coRjXZ58
q5WksIPZN4kO3Q==
-----END CERTIFICATE-----
Generated at Mon Mar 2 04:35:53 2026 by rpki-client